Microservices enable modern application architecture in today’s fast-changing digital world. They break apps into smaller, deployable services, and this accelerates development, improves scalability, and increases flexibility. Cloud computing’s capabilities for distributed systems and containerized settings make this step vital, contributing…
Category: DZone Security Zone
Why Data Privacy Without Context Will No Longer Work in 2026
The comfort zone of anonymization is breaking. For years, enterprises have limited their privacy goals to surface-level techniques of anonymization. Techniques such as Mask PII, which obfuscate identifiers and others, are often assumed to ensure compliance without thorough execution. And…
Building a Modern Data Platform That Delivers Real Business Value
Data modernization is a strategic endeavor that transforms the way organizations harness data for value creation. It involves adopting innovative approaches in terms of accessibility, governance, operations, and technology, typically centered around modern cloud architectures. This transformation is not limited…
Implementing Least Privilege in AWS IAM: Principles, Practices, and Automation
The principle of least privilege is fundamental to securing cloud environments by ensuring that identities have only the permissions necessary to perform their tasks. In AWS Identity and Access Management (IAM), sticking to the principle of least privilege is one…
Lock-Free Programming: From Primitives to Working Structures
Working with multiple threads is one of the most complex problems we may encounter in our daily work. When put against the wall of multithreading, most people right away reach out for blocking approaches. In Java, it takes the form…
Software Supply Chain Security Regulations From a DevSecOps Perspective
Editor’s Note: The following is an article written for and published in DZone’s 2025 Trend Report, Software Supply Chain Security: Enhancing Trust and Resilience Across the Software Development Lifecycle. High-profile software supply chain attacks like SolarWinds, Log4j, and MOVEit highlight the…
How to Expose IBM FS Cloud Container App to Public
Are you looking for a way to expose your containerized applications to the internet without breaking compliance with IBM Cloud for Financial Services? This guide walks through how to do just that. It shows how to securely expose your apps…
AI-Driven Threat Hunting: Catching Zero Day Exploits Before They Strike
Picture this: you’re a cybersecurity pro up against an invisible enemy. Hidden in your network are zero-day exploits, which represent unknown vulnerabilities that await their moment to strike. The time you spend examining logs becomes pointless because the attack might…
Burn that List: Smarter Use of Allowlists and Denylists in Multi-Tenant Systems
In multi-tenant systems—whether you’re managing an API gateway, identity platform, or SaaS product—access control is essential. Two of the most widely used tools for managing that access are allowlists and denylists. These mechanisms define who or what is permitted or rejected,…
Practical Steps to Secure the Software Supply Chain End to End
Editor’s Note: The following is an article written for and published in DZone’s 2025 Trend Report, Software Supply Chain Security: Enhancing Trust and Resilience Across the Software Development Lifecycle. The software supply chain has rapidly evolved into a critical vulnerability point…